[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff (@jmm) jmm at debian.org
Mon Oct 10 09:23:22 BST 2022 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2fc77cb4 by Moritz Muehlenhoff at 2022-10-10T10:22:58+02:00
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11,9 +11,9 @@ CVE-2022-42727
 CVE-2022-42726
 	RESERVED
 CVE-2022-42725 (Warpinator through 1.2.14 allows access outside of an intended directo ...)
-	TODO: check
+	NOT-FOR-US: Warpinator
 CVE-2022-42724 (app/Controller/UsersController.php in MISP before 2.4.164 allows attac ...)
-	TODO: check
+	NOT-FOR-US: MISP
 CVE-2022-42723
 	RESERVED
 CVE-2022-42722
@@ -572,7 +572,7 @@ CVE-2022-3424 [misc: sgi-gru: fix use-after-free error in gru_set_context_option
 	- linux <unfixed>
 	NOTE: https://lore.kernel.org/all/20221006152643.1694235-1-zyytlz.wz@163.com/
 CVE-2022-3423 (Denial of Service in GitHub repository nocodb/nocodb prior to 0.92.0. ...)
-	TODO: check
+	NOT-FOR-US: nocodb
 CVE-2022-3422 (Account Takeover :: when see the info i can see the hash pass i can cr ...)
 	NOT-FOR-US: ToolJet
 CVE-2022-3421
@@ -2478,7 +2478,7 @@ CVE-2022-41576
 CVE-2022-41575
 	RESERVED
 CVE-2022-41574 (An access-control vulnerability in Gradle Enterprise 2022.4 through 20 ...)
-	TODO: check
+	NOT-FOR-US: Gradle Enterprise
 CVE-2022-41573
 	RESERVED
 CVE-2022-41572
@@ -5312,7 +5312,7 @@ CVE-2022-40496
 CVE-2022-40495
 	RESERVED
 CVE-2022-40494 (NPS before v0.26.10 was discovered to contain an authentication bypass ...)
-	TODO: check
+	NOT-FOR-US: NPS (network penetration server)
 CVE-2022-40493
 	RESERVED
 CVE-2022-40492
@@ -5587,7 +5587,7 @@ CVE-2022-40361
 CVE-2022-40360
 	RESERVED
 CVE-2022-40359 (Cross site scripting (XSS) vulnerability in kfm through 1.4.7 via craf ...)
-	TODO: check
+	NOT-FOR-US: kfm
 CVE-2022-40358 (An issue was discovered in AjaXplorer 4.2.3, allows attackers to cause ...)
 	- ajaxplorer <itp> (bug #668381)
 CVE-2022-40357 (A security issue was discovered in Z-BlogPHP <= 1.7.2. A Server-Sid ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2fc77cb479def7b19890ff40cf727d72fa3848c3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2fc77cb479def7b19890ff40cf727d72fa3848c3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221010/a1a873ee/attachment.htm>

More information about the debian-security-tracker-commits mailing list